b5e098f72bc0aebee90c42856bf2957aafdf1f406099e853578c8c8366a0b14a

General

Target

b5e098f72bc0aebee90c42856bf2957aafdf1f406099e853578c8c8366a0b14a
Size

101KB
MD5

5359aa34cd698b060723b9899a815982
SHA1

e1d52e3a0ef636c86dd242086084f278337747a4
SHA256

b5e098f72bc0aebee90c42856bf2957aafdf1f406099e853578c8c8366a0b14a
SHA512

b595572d8163ae7222538755e92510c18ac4ed4b9baa3a5a879239860af86fb434814a6a4ed051fa9f9250c1a671c4d5666d847ba1265741e8f5002bae79611c
SSDEEP

1536:BcqYai0pRL0OjHZmGKowTvcLED4pWsOPhZCCAJibqER:ZYkzL7ZmafE9CRER

Score

N/A

Malware Config

Signatures

Files

b5e098f72bc0aebee90c42856bf2957aafdf1f406099e853578c8c8366a0b14a
.exe windows x86

86a2e5333d757b36af69f08a021a9267

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

gdi32

SetBkColor
ExtTextOutW
LineTo
CreateCompatibleBitmap
MoveToEx
SetBkColor
GetObjectW
GetDeviceCaps
GetDeviceCaps
DeleteObject
SelectObject
GetDeviceCaps
GetObjectW
DeleteObject
GetStockObject
GetStockObject
BitBlt
GetTextMetricsW
MoveToEx
SetTextColor
PatBlt
BitBlt
GetDeviceCaps
DeleteDC

shell32

ShellAboutW
SHGetDesktopFolder
DragQueryFileW
SHGetFileInfoW

user32

GetMessageW
SendMessageW
GetWindowRect
GetDC
GetSystemMetrics
PostMessageW
ReleaseDC
GetWindowRect
UpdateLayeredWindow
DefWindowProcW
GetMessageW
DestroyWindow
CreateWindowExW
SendMessageW
DefWindowProcW
GetDlgItem
GetDC
CreateWindowExW
CreateWindowExW
LoadIconW
PostMessageW
GetDC
GetWindowRect
DestroyWindow
ReleaseDC
DestroyWindow
SendMessageW
LoadIconW

advapi32

RegSetValueExW

kernel32

WaitForSingleObject
SetUnhandledExceptionFilter
FreeLibrary
lstrlenW
VirtualAlloc
SetEvent
WaitForSingleObject
GetCurrentThreadId
VirtualFree
LocalFree
GetModuleHandleA
GetCommandLineA
GetProcessHeap
SetUnhandledExceptionFilter
GetCurrentProcess
MultiByteToWideChar
LoadLibraryA
GetCommandLineW
SetEvent
GetModuleHandleW
GetCurrentProcessId
LocalAlloc

Sections

.text
Size: 24KB - Virtual size: 24KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 20KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 69KB - Virtual size: 72KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

86a2e5333d757b36af69f08a021a9267

Headers

File Characteristics

Imports

gdi32

shell32

user32

advapi32

kernel32

Sections

.text Size: 24KB - Virtual size: 24KB

.data Size: 4KB - Virtual size: 20KB

.rdata Size: 2KB - Virtual size: 4KB

.rsrc Size: 69KB - Virtual size: 72KB

.text
Size: 24KB - Virtual size: 24KB

.data
Size: 4KB - Virtual size: 20KB

.rdata
Size: 2KB - Virtual size: 4KB

.rsrc
Size: 69KB - Virtual size: 72KB